Use SRV record for LDAP Authentication
Plus Target Version:
Maybe it is me, but, using an SRV record to resolve to either SSL or TLS LDAP server doesn't work. IMO, this would provide elegant failover for authentication.
Keep up the great work.